Cisco Cisco NSS030 Smart Storage External Power Adapter Libro bianco

4

Security Considerations White Paper for Cisco Smart Storage 

White Paper

Introduction

The NSS 300 Smart Storage is a very flexible network resource that can be 

deployed in various environments:

•

NAS servicing the public Internet.

•

NAS exclusively servicing a closed LAN.

•

NAS providing services to the public Internet from behind a router, firewall 

or gateway.

•

NAS providing application service protocols.

This section investigates several tools used to exploit security vulnerabilities in 

these various network environments. 
Some background is provided on the following network and system tools and how 

they are used to put your network at risk:

To harden your business network, the following recommendations can be 

implemented to minimize exposure to these vulnerabilities:

•

Enable Password Strength Enforcement

•

Disable unused process, applications, guest accounts

•

Deploy FTP over SSL

•

Disable Anonymous FTP

•

Enable Network Access Protection

•

Deploy SNMPv3 instead of SNMPv2

•

Deploy HTTPS for the administration functions

•

Disable HTTP

•

Deploy port forwarding from WAN to access LAN resources

Nessus

Nikto

Metasploit 

Framework

Nmap

Xprobe2

Amap

Winfo

Hping2

John the Ripper

THC Hydra